AMENDMENTS TO THE CLAIMS 

This listing of claims will replace all prior versions and listings of claims in the application. 

1. (Currently Amended) A computer implemented method for updating a current 
security scheme on a computer system, said computer implemented method comprising the steps of: 

(a) receiving log-in data for a client during a first log-in attempt; 

(b) authenticating said client, wherein said step (b) includes the steps of: 

(1) applying a first function to a value in said log-in data to obtain a first result, 

and 

(2) employing said first result in determining whether to authenticate said client 
during said first log-in attempt; 

(c) completing said first log-in attempt; 

(e) detennining (d) automatically determining that said current security scheme is 

to be replaced by a desired security scheme after completing said first log-in attempt, wherein said 
determining is performed before a next log-in attempt for said client ; and 

(d) modifying {e) modifying at least one record in said computer system in 

response to said st e p (c) step (d^ before said next log-in attempt , wherein said st e p (d) step (e) 
includes the step of: 

(1) applying a second function to said value received in said step (a) to obtain a 
second result. 

2. (Original) The computer implemented method of claim 1, wherein said computer 
system maintains a log-in record, wherein said step (b)(2) includes the steps of: 

(1) comparing said first result obtained in said step (b)(1) to a first value stored in said 
log-in record. 

3 . (Currently Amended) The computer implemented method of claim 2, wherein said 
stop (d) step (e) includes the step of: 

(2) replacing said first value in said log-in record with said second result obtained in said 
atop (d)(1) step (q)(1) . 
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4 . (Original) The computer implemented method of claim 3 , wherein said first fiinction 
is a first hash fiinction and said second fiinction is a second hash fiinction different than said first 
hash function. 

5. (Original) The computer implemented method of claim 2, wherein said step (b) 
includes the steps ofi 

(3) applying a third fimction to said value in said log-in data to obtain a first credential; 

and 

(4) decrypting a third value in said log-in record to obtain a decrypted value, wherein 
said step (b)(4) employs said first credential. 

6 . (Original) The computer implemented method of claim 5 , wherein said step (b) 
fiirther includes the step ofi 

(5) forwarding said decrypted value to a primary computer system. 

7. (Currently Amended) The computer implemented method of claim 5 , wherein said 
stop (d) step (e^ includes the steps ofi 

(2) replacing said first value in said log-in record with said second result obtained in said 
stop (d)(1) step (e)(1) ; 

(3) applying a fourth fimction to said value in said log-in record to obtain a second 

credential; 

(4) encrypting a quantity to obtain a fourth value, wherein said st e p (d)(1) step (e)(4) 
employs said second credential; and 

(5) replacing said third value in said log-in record with said fourth value. 

8. (Original) The computer implemented method of claim 7, wherein: 

said first function is a first hash fiinction and said second fiinction is a second hash function 
different than said first hash fimction, and 

said third fimction is a third hash fiinction and said fourth fiinction is a fourth hash fiinction 
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different than said third hash function. 



9. (Original) The computer implemented method of claim 2, wherein said step (b) 

includes the steps of: 

(3) inputting said value in said log-in data into a first cryptographic cipher to obtain a 
first encryption key; and 

(4) decrypting a third value in said log-in record to obtain a decrypted value, wherein 
said step (b)(4) employs said first encryption key. 

10. (Original) The computer implemented method of claim 9, wherein said step (b) 
further includes the step of: 

(5) forwarding said decrypted value to a primary computer system. 

1 1 . (Currently Amended) The computer implemented method of claim 9, wherein said 
st e p (d) step (e) includes the steps of: 

(2) replacing said first value in said log-in record with said second result obtained in said 
ste^W)st^XeXl}; 

(3) inputting said value in said log-in data into a second cryptographic cipher to obtain a 
second encryption key; 

(4) encrypting a quantity to obtain a fourth value, wherein said stop (d)( 4 ) step (e)(4) 
employs said second encryption key; and 

(5) replacing said third value in said log-in record with said fourth value. 

12. (Original) The computer implemented method of claim 1, wherein said computer 
system maintains a log-in record, wherein said step (b)(2) includes the steps of: 

(i) decrypting a first value in said log-in record to obtain a decrypted value, wherein said 

step (b)(2)(i) employs said first result as a decryption key; and 

(ii) forwarding said decrypted value to a primary computer system. 

1 3 . (Currently Amended) The computer implemented method of claim 12, wherein said 

.4. 
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step (d) step (e) includes the steps of: 

(2) encrypting a quantity to obtain a second value, wherein said step (d)(3) step (e)(3) 

employs said second result obtained in said step (d)(1) step (e)(1) ; and 

(3) replacing said first value in said log-in record with said second value. 

14. (Original) The computer implemented method of claim 13, wherein: 

said first function is a first hash function and said second function is a second hash function 
different than said first hash function, and 

said third function is a third hash function and said fourth function is a fourth hash function 
different than said third hash function. 

1 5 . (Original) The computer implemented method of claim 1 1 , wherein: 

said first function is a first cryptographic cipher and said second function is a second 
cr5q)tographic cipher different than said first cryptographic cipher, and 

said third function is a third cryptographic cipher and said fourth function is a fourth 
cryptographic cipher different than said third cryptographic cipher. 

16. (Currently Amended) The computer implemented method of claim 1, further 
including the steps of: 

(e) rocoiving (f) receiving log-in data for said client during a second log-in attempt; 

(f) authenticating (g) authenticating said client during said second log-in attempt, 

wherein said stop (f) step (g) includes the steps of: 

(1) applying said second function to a value in said log-in data received in said 
stop (o) step (f) to obtain a third result, and 

(2) employing said third result in determining whether to authenticate said client 
during said second log-in attempt. 

17. (Currently Amended) The computer implemented method of claim 1 , wherein said 
computer system includes a log-in record corresponding to said client, wherein said log-in record 
includes a first entry identifying said current security scheme, said computer implemented method 
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further including the step of: 

(g) replacing (h) replacing said first entry in said log-in record with a second entry 

identifying said desired security scheme. 

1 8 . (Currently Amended) A computer implemented method for providing a client with 
access to a primary system through an intermediate system, said computer implemented method 
comprising the steps of: 

(a) creating a log-in recor d at said intermediate system , wherein said log-in record 
includes a security identifier and a first encrypted value, wherein said security identifier corresponds 
to a current security scheme employed by said intermediate system; 

(b) receiving log-in data for said chent; 

(c) authenticating access of said client to said intermediate system, based on data from 
said log-in data and data from said log-in record; 

(d) obtaining authentication data to send to said primary system, wherein said 
authentication data includes data from a decrypted version of said first encrypted value at said 
intermediate system ; 

(e) determining that said current security scheme is to be replaced by a desired security 
scheme; and 

(f) modifying said log-in record, wherein said step (f) includes the steps of: 

( 1 ) updating said security identifier to correspond to said desired security scheme, 

(2) employing data in said log-in data received in said step (b) to calculate a 
second encrypted value, and 

(3) replacing said first encrypted value with said second encrypted value. 

19. (Original) The computer implemented method of claim 18, wherein said step (c) 
includes the steps of: 

(1) applying a first fiinction to a value in said log-in data to obtain a first result, and 

(2) comparing said first result obtained in said step (c)(1) to a first value stored in said 
log-in record. 
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20. (Original) The computer implemented method of claim 19, wherein said step (f) 
includes the steps of: 

(4) applying a second function to said value in said log-in data to obtain a second result; 

and 

(5) replacing said first value in said log-in record with said second result obtained in said 
step (d)(4). 

21. (Original) The computer implemented method of claim 20, wherein said first 
function is a first hash function and said second function is a second hash function different than said 
first hash function. 

22. (Original) The computer implemented method of claim 20, wherein said step (d) 
includes the steps of: 

(3) applying a third function to said value in said log-in data to obtain a first credential; 

and 

(4) decrypting said first encrypted value in said log-in record to obtain a first decrypted 
value, wherein said step (d)(4) employs said first credential, wherein said authentication data 
includes said first decrypted value. 

23. (Original) The computer implemented method of claim 22, 
wherein said step (f)(2) includes the steps of: 

(i) applying a fourth fimction to said value in said log-in record to obtain a 
second credential; and 

(ii) encrypting a quantity to obtain said second encrypted value, wherein said step 
(f)(2)(ii) employs said second credential. 

24. (Original) The computer implemented method of claim 23, wherein said third 
function is a third hash function and said fourth fiinction is a fourth hash function different than said 
third hash fimction. 
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25. (Original) The computer implemented method of claim 20, wherein said step (d) 
includes the steps of: 

(3 ) inputting said value in said log-in data to a first cryptographic cipher to obtain a first 

decryption key; and 

(4) decrypting said first encrypted value in said log-in record to obtain a first decrypted 
value, wherein said step (d)(4) employs said first decryption key, wherein said authentication data 
includes said first decrypted value. 

26. (Original) The computer implemented method of claim 25, 
wherein said step (f)(2) includes the steps of: 

(i) inputting said value in said log-in record to a second cryptographic cipher to 
obtain said second encryption key; 

(ii) encrypting a quantity to obtain said second encrypted value, wherein said step 
(f)(2)(ii) employs said second encryption key. 

27. (Original) The computer implemented method of claim 18, wherein said step (d) 
includes the steps of: 

( 1 ) applying a first fimction to a value in said log-in data to obtain a first credential; and 

(2) decrypting said first encrypted value in said log-in record to obtain a first decrypted 
value, wherein said step (d)(2) employs said first credential, wherein said authentication data 
includes said first decrypted value. 

28. (Original) The computer implemented method of claim 27, 
wherein said step (f)(2) includes the steps of: 

(i) applying a second fimction to said value in said log-in record to obtain a 
second credential; and 

(ii) encrypting a quantity to obtain said second encrypted value, wherein said step 
(f)(2)(ii) employs said second credential. 

29. (Original) The computer implemented method of claim 28, wherein said first 
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function is a first hash function and said second function is a second hash function different than said 
first hash function. 

30. (Original) The computer implemented method of claim 28, wherein said first 
function is a first cr3^tographic cipher and said second fimction is a second cryptographic cipher 
different than said first cryptographic cipher. 

31. (Currently Amended) A processor readable storage medium having processor 
readable code embodied on said processor readable storage medium, said processor readable code 
for programming a processor to perform a method for updating a current security scheme on a 
computer system, said method comprising the steps of: 

(a) receiving log-in data for a client during a first log-in attempt; 

(b) authenticating said client, wherein said step (b) includes the steps of: 

(1) applying a first function to a value in said log-in data to obtain a first result, 

and 

(2) employing said first resuk in determining whether to authenticate said client 
during said first log-in attempt; 

(c) completing said first log-in attempt; 

(e) d e t e rmining (d) automatically determining t hat said current security scheme is 

to be replaced by a desired security scheme after completing said first log-in attempt, wherein said 
determining is performed before a next log-in attempt for said client ; and 

(d) modifying (e) modifying at least one record in said computer system in 

response to said st e p (c) step (d) before said next log-in attempt , wherein said step (d) step (e) 
includes the step of: 

(1) applying a second fimction to said value received in said step (a) to obtain a 
second result. 

32. (Currently Amended) The processor readable storage medium of claim 3 1 , wherein 
said computer system maintains a log-in record, wherein said step (b)(2) includes the steps of: 

(i) comparing said first result obtained in said step (b)(1) to a first value stored in said 
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log-in record, and 

wherein said stop (d) step (e) includes the step of: 

(2) replacing said first value in said log-in record with said second result obtained in said 

step (d)(1). 

33. (Original) The processor readable storage medium of claim 32, wherein said first 
function is a first hash function and said second function is a second hash function different than said 
first hash function. 

34. (Currently Amended) The processor readable storage medium of claim 32, wherein 
said step (b) includes the steps of: 

(3) applying a third function to said value in said log-in data to obtain a first credential; 

and 

(4) decrypting a third value in said log-in record to obtain a decrypted value, wherein 
said step (b)(4) employs said first credential, and 

wherein said stop (d) step (e) includes the steps of 

(3) applying a fourth function to said value in said log-in record to obtain a second 
credential; 

(4) encrypting a quantity to obtain a fourth value, wherein said st e p (d)('1) step (e)(4) 
employs said second credential; and 

(5) replacing said third value in said log-in record with said fourth value. 

35 . (Original) The processor readable storage medium of claim 34, wherein: 

said first function is a first hash function and said second function is a second hash function 
different than said first hash fimction, and 

said third function is a third hash fimction and said fourth fimction is a fourth hash function 
different than said third hash function. 

36. (Currently Amended) The processor readable storage medium of claim 32, wherein 
said step (b) includes the steps of: 
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(3) inputting said value in said log-in data into a first crj^tographic cipher to obtain a 
first encryption key; and 

(4) decrypting a third value in said log-in record to obtain a decrypted value, wherein 
said step (b)(4) employs said first encryption key, and 

wherein said step (d) step (e) includes the steps of: 

(3) inputting said value in said log-in data into a second cryptographic cipher to obtain a 
second encryption key; 

(4) encrypting a quantity to obtain a fourth value, wherein said stop (d)( 4 ) step (e)(4) 
employs said second encryption key; and 

(5) replacing said third value in said log-in record with said fourth value. 

3 7 . (Currently Amended) The processor readable storage medium of claim 3 1 , wherein 
said computer system maintains a log-in record, wherein said step (b)(2) includes the steps of: 

(1) decrypting a first value in said log-in record to obtain a decrypted value, wherein said 
step (b)(2)(i) employs said first result as a decryption key; and 

(ii) forwarding said decrypted value to a primary computer system, and 
wherein said st e p (d) step (e) includes the steps of 

(2) encrypting a quantity to obtain a second value, wherein said stop (d)(2) step (e)(2) 
employs said second result obtained in said st e p (d)(1) step (e)(1) ; and 

(3) replacing said first value in said log-in record with said second value. 

38. (Original) The processor readable storage medium of claim 37, wherein: 

said first function is a first hash fiinction and said second fiinction is a second hash function 
different than said first hash fiinction, and 

said third fimction is a third hash fiinction and said fourth fiinction is a fourth hash fiinction 
different than said third hash fiinction. 

39. (Original) The processor readable storage medium of claim 37, wherein: 

said first fimction is a first cryptographic cipher and said second fiinction is a second 
crj^tographic cipher different than said first cryptographic cipher, and 



Attorney Docket No. FUSN1-01301US1 
fusnl/1301usl/1301usl.response-002 



- 11 - 



said third function is a third cryptographic cipher and said fourth function is a fourth 
crj^tographic cipher different than said third cryptographic cipher. 

40 . (Currently Amended) The processor readable storage medium of claim 3 1 , wherein 
said computer system includes a log-in record corresponding to said client, wherein said log-in 
record includes a first entry identifying said current security scheme, said computer implemented 
method further including the step of: 

(e) replacing (f) replacing said first entry in said log-in record with a second entry 

identifying said desired security scheme. 

41. (Currently Amended) A processor readable storage medium having processor 
readable code embodied on said processor readable storage medium, said processor readable code 
for programming a processor to perform a method for providing a client with access to a primary 
system through an intermediate system, said method comprising the steps of: 

(a) creating a log-in record at said intermediate system , wherein said log-in record 
includes a security identifier and a first encrypted value, wherein said security identifier corresponds 
to a current security scheme employed by said intermediate system; 

(b) receiving log-in data for said client; 

(c) authenticating access of said client to said intermediate system, based on data from 
said log-in data and data from said log-in record; 

(d) obtaining authentication data to send to said primary system, wherein said 
authentication data includes data from a decrypted version of said first encrypted value at said 
intermediate system ; 

(e) determining that said current security scheme is to be replaced by a desired security 
scheme; and 

(f) modifying said log-in record, wherein said step (f) includes the steps of: 

( 1 ) updating said security identifier to correspond to said desired security scheme, 

(2) employing data in said log-in data received in said step (b) to calculate a 
second encrypted value, and 

(3) replacing said first encrypted value with said second encrypted value. 
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42 . (Original) The processor readable storage medium of claim 4 1 , wherein said step (c) 
includes the steps of: 

(1) applying a first fiinction to a value in said log-in data to obtain a first result, and 

(2) comparing said first result obtained in said step (c)(1) to a first value stored in said 
log-in record, and 

wherein said step (f) includes the steps of: 

(4) applying a second fiinction to said value in said log-in data to obtain a second result; 

and 

(5 ) replacing said first value in said log-in record with said second result obtained in said 
step (d)(4). 

43. (Original) The processor readable storage medium of claim 42, wherein said first 
fiinction is a first hash function and said second fiinction is a second hash function different than said 
first hash fiinction. 

44. (Original) The processor readable storage medium of claim 42, wherein said step (d) 
includes the steps of: 

(3) applying a third fiinction to said value in said log-in data to obtain a first credential; 

and 

(4) decrypting said first encrypted value in said log-in record to obtain a first decrypted 
value, wherein said step (d)(4) employs said first credential, wherein said authentication data 
includes said first decrypted value, and 

wherein said step (f)(2) includes the steps of: 

(i) applying a fourth fiinction to said value in said log-in record to obtain a 
second credential; and 

(ii) encrypting a quantity to obtain said second encrypted value, wherein said step 
(f)(2)(ii) employs said second credential. 

45 . (Original) The processor readable storage medium of claim 42, wherein said step (d) 
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includes the steps of: 

(3) inputting said value in said log-in data to a first cryptographic cipher to obtain a first 
decryption key; and 

(4) decrypting said first encrj^ted value in said log-in record to obtain a first decrypted 
value, wherein said step (d)(4) employs said first decryption key, wherein said authentication data 
includes said first decrypted value, and 

wherein said step (f)(2) includes the steps of: 

(i) inputting said value in said log-in record to a second cryptographic cipher to 
obtain said second encryption key; 

(ii) encrypting a quantity to obtain said second encrypted value, wherein said step 
(f)(2)(ii) employs said second encryption key. 

46 . (Original) The processor readable storage medium of claim 4 1 , wherein said step (d) 
includes the steps of: 

(1) applying a first function to a value in said log-in data to obtain a first credential; and 

(2) decrypting said first encrypted value in said log-in record to obtain a first decrypted 
value, wherein said step (d)(2) employs said first credential, wherein said authentication data 
includes said first decrypted value, and 

wherein said step (f)(2) includes the steps of: 

(i) applying a second fiinction to said value in said log-in record to obtain a 
second credential; and 

(ii) encrypting a quantity to obtain said second encrypted value, wherein said step 
(f)(2)(ii) employs said second credential. 

47. (Original) The processor readable storage medium of claim 46, wherein said first 
fiinction is a first hash fiinction and said second fiinction is a second hash fiinction different than said 
first hash fiinction. 

48. (Original) The processor readable storage medium of claim 46, wherein said first 
fiinction is a first cryptographic cipher and said second fiinction is a second cryptographic cipher 
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different than said first cryptographic cipher. 

49. (Currently Amended) An apparatus providing a client with access to a primary 
system through an intermediate system, said apparatus comprising: 

a processor; and 

a processor readable storage medium, in communication with said processor, said processor 
readable storage medium storing code for programming said processor to perform a method for 
updating a current security scheme on a computer system, wherein said method includes the steps of 

(a) receiving log-in data for a client during a first log-in attempt; 

(b) authenticating said client, wherein said step (b) includes the steps of: 

( 1 ) applying a first function to a value in said log-in data to obtain a first resuh, 

and 

(2) employing said first result in determining whether to authenticate said client 
during said first log-in attempt; 

(c) completing said first log-in attempt; 

(e) dotormining (d) automatically determining that said current security scheme is 

to be replaced by a desired security scheme after completing said first log-in attempt, wherein said 
determining is performed before a next log-in attempt for said client ; and 

(d) modifiang (e) modifying at least one record in said computer system in 

response to said stop (c) step (d) , wherein said stop (d) step (e) includes the step of: 

( 1 ) applying a second fimction to said value received in said step (a) to obtain a 
second result. 

50. (Currently Amended) The apparatus of claim 49, wherein said computer system 
maintains a log-in record, wherein said step (b)(2) includes the steps of: 

(1) comparing said first result obtained in said step (b)(1) to a first value stored in said 
log-in record, and 

wherein said stop (d) step (e) includes the step of: 

(2) replacing said first value in said log-in record with said second result obtained in said 
stop (d)(n step (e)(n . 
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5 1 . (Currently Amended) The apparatus of claim 50, wherein said step (b) includes the 
steps of: 

(3) applying a third function to said value in said log-in data to obtain a first credential; 

and 

(4) decrypting a third value in said log-in record to obtain a decrypted value, wherein 
said step (b)(4) employs said first credential, and 

wherein said step (d) step (e) includes the steps of: 

(3) applying a fourth function to said value in said log-in record to obtain a second 
credential; 

(4) encrypting a quantity to obtain a fourth value, wherein said st e p (d)('1) step (e)(4) 
employs said second credential; and 

(5) replacing said third value in said log-in record with said fourth value. 

52. (Original) The apparatus of claim 51 , wherein: 

said first function is a first hash function and said second function is a second hash function 
different than said first hash function, and 

said third function is a third hash function and said fourth function is a fourth hash function 
different than said third hash function. 

53. (Original) The apparatus of claim 50, wherein said step (b) includes the steps of: 

(3) inputting said value in said log-in data into a first cryptographic cipher to obtain a 
first encryption key; and 

(4) decrypting a third value in said log-in record to obtain a decrypted value, wherein 
said step (b)(4) employs said first encryption key, 

wherein said stop (d) step (e) includes the steps of: 

(3 ) inputting said value in said log-in data into a second cryptographic cipher to obtain a 
second encryption key; 

(4) encrypting a quantity to obtain a fourth value, wherein said st e p (d)('1) step (e)(4) 
employs said second encryption key; and 
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(5) replacing said third value in said log-in record with said fourth value. 

54. (Currently Amended) The apparatus of claim 49, wherein said computer system 
maintains a log-in record, wherein said step (b)(2) includes the steps of: 

(1) decrypting a first value in said log-in record to obtain a decrypted value, wherein said 
step (b)(2)(i) employs said first result as a decryption key; and 

(ii) forwarding said decrypted value to a primary computer system, and 
wherein said step (d) step (e) includes the steps of: 

(2) encrypting a quantity to obtain a second value, wherein said step (d)(2) step (e)(2) 
employs said second result obtained in said stop (d)(1) step (e)(1) : and 

(3) replacing said first value in said log-in record with said second value. 

55. (Original) The apparatus of claim 54, wherein: 

said first function is a first hash function and said second fiinction is a second hash function 
different than said first hash function, and 

said third function is a third hash function and said fourth function is a fourth hash function 
different than said third hash fimction. 

56. (Original) The apparatus of claim 54, wherein: 

said first function is a first cryptographic cipher and said second fimction is a second 
cryptographic cipher different than said first cryptographic cipher, and 

said third function is a third cryptographic cipher and said fourth fimction is a fourth 
cryptographic cipher different than said third cryptographic cipher. 

57. (Currently Amended) The apparatus of claim 49, wherein said computer system 
includes a log-in record corresponding to said client, wherein said log-in record includes a first entry 
identifying said current security scheme, said method further including the step of: 

(e) replacing (f) replacing said first entry in said log-in record with a second entry 

identifying said desired security scheme. 
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